$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2b4043e-bd7b-4569-909f-36c617544f6f.roa File: d2b4043e-bd7b-4569-909f-36c617544f6f.roa (raw, json) Hash identifier: r6plNQN5WPgIek4urV8pxO3ppxG3tY/0G+/AH29/0E4= Subject key identifier: 5E:2A:5D:E8:85:97:BC:11:17:F8:6C:5A:69:90:C1:08:FD:F3:B0:1A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 509BB2AB08C216CD1016EF45BC196C22BE383918 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2b4043e-bd7b-4569-909f-36c617544f6f.roa Signing time: Wed 09 Apr 2025 00:42:11 +0000 ROA not before: Wed 09 Apr 2025 00:42:11 +0000 ROA not after: Wed 14 May 2025 23:59:59 +0000 asID: 14618 IP address blocks: 99.77.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:9b:b2:ab:08:c2:16:cd:10:16:ef:45:bc:19:6c:22:be:38:39:18 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 9 00:42:11 2025 GMT Not After : May 14 23:59:59 2025 GMT Subject: serialNumber=d1b2c17f3975efc5a0aad60bf70d2e9024c3caaebb6e655a4a3b2f0ff3c412f2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:48:c2:f2:06:b7:19:20:dd:72:ef:e6:26:39: c5:18:88:a3:76:d3:94:6f:20:e3:14:06:69:26:10: 11:14:4e:c3:99:69:32:62:b6:1f:67:21:15:04:95: 70:87:ce:ac:cf:fa:32:2a:ea:cd:cd:4a:60:af:b2: 41:5f:25:50:b7:17:16:83:0c:60:cc:57:2e:95:d9: d3:76:bb:06:55:32:97:cc:85:f7:b2:f2:b5:49:6f: 1c:b7:df:61:55:fc:08:06:cf:87:02:60:76:92:46: d4:8a:b9:b5:22:8d:96:03:70:66:04:fc:f6:ca:88: 7d:13:6c:55:ad:92:9e:64:e2:54:bb:87:95:78:17: ed:f4:1d:47:2b:bf:b3:51:51:88:d8:f2:55:43:64: 34:5d:32:45:a6:1e:87:12:0d:7f:16:d8:dd:2c:33: fc:84:b4:db:2b:40:bd:af:d6:d8:87:1e:ca:4f:d4: 3a:19:69:a8:ee:d7:ab:34:b9:d8:59:d6:4e:15:03: 9e:89:c2:2c:3d:af:b4:7c:b4:15:6f:19:9d:9e:4f: b7:ee:82:62:87:2b:02:de:77:99:f5:8e:95:12:e8: b0:fa:49:06:08:ad:ee:fd:15:9c:a5:33:bb:68:3e: ed:16:77:32:4d:7c:7d:2f:3b:f3:21:ff:15:22:2c: 08:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:2A:5D:E8:85:97:BC:11:17:F8:6C:5A:69:90:C1:08:FD:F3:B0:1A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2b4043e-bd7b-4569-909f-36c617544f6f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.129.0/24 Signature Algorithm: sha256WithRSAEncryption 00:0c:dd:e0:26:ae:a8:f8:6a:1d:14:76:7d:cd:d1:51:2c:e6: fb:b0:0d:81:f5:ea:44:19:4c:77:83:22:af:60:65:db:a1:ce: 06:7a:46:e7:a7:c4:22:b7:a8:50:f4:6b:32:78:bb:62:b7:a4: 67:9b:1a:20:92:82:84:6f:36:b3:a1:48:42:39:af:87:85:5c: 84:38:da:27:37:4c:24:8f:f1:88:04:17:42:19:2f:5e:25:b1: 24:d9:56:21:a0:7d:f4:d7:48:6d:3d:4e:05:3a:f9:04:e9:5a: 78:90:b2:32:38:45:eb:6d:65:b9:9b:f1:63:22:ea:51:4b:c6: b3:f2:61:7d:f5:75:3e:ad:81:5c:e3:83:cb:d8:6c:9b:14:d1: d2:15:00:5f:a7:99:52:27:21:b2:44:89:0c:a2:5b:55:ac:91: b1:47:3d:66:be:16:1e:df:f5:f2:88:f3:16:a2:74:f0:d5:31: e3:49:af:19:0b:8f:e5:85:6f:c9:d5:5f:fd:33:4d:c2:56:3b: 77:9b:27:18:62:1d:e8:1c:ae:75:d6:6c:1b:e9:65:fc:59:b1: c7:a9:aa:b5:89:85:ab:1c:07:fb:9b:80:03:80:d1:77:90:7b: a3:fa:2b:db:b6:b5:60:d6:46:c0:b7:d1:72:0a:f5:90:00:b3: 0d:e6:77:50 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUJuyqwjCFs0QFu9FvBlsIr44ORgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjUwNDA5MDA0MjExWhcNMjUwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMWIyYzE3ZjM5NzVlZmM1YTBhYWQ2MGJmNzBkMmU5MDI0 YzNjYWFlYmI2ZTY1NWE0YTNiMmYwZmYzYzQxMmYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKSMLyBrcZIN1y7+YmOcUYiKN205RvIOMUBmkmEBEUTsOZ aTJith9nIRUElXCHzqzP+jIq6s3NSmCvskFfJVC3FxaDDGDMVy6V2dN2uwZVMpfM hfey8rVJbxy332FV/AgGz4cCYHaSRtSKubUijZYDcGYE/PbKiH0TbFWtkp5k4lS7 h5V4F+30HUcrv7NRUYjY8lVDZDRdMkWmHocSDX8W2N0sM/yEtNsrQL2v1tiHHspP 1DoZaaju16s0udhZ1k4VA56Jwiw9r7R8tBVvGZ2eT7fugmKHKwLed5n1jpUS6LD6 SQYIre79FZylM7toPu0WdzJNfH0vO/Mh/xUiLAg9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXipd6IWXvBEX+GxaaZDBCP3zsBowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QyYjQwNDNlLWJkN2ItNDU2OS05MDlmLTM2YzYxNzU0NGY2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTYEwDQYJKoZIhvcNAQELBQADggEBAAAM3eAmrqj4ah0Udn3N0VEs5vuw DYH16kQZTHeDIq9gZduhzgZ6RuenxCK3qFD0azJ4u2K3pGebGiCSgoRvNrOhSEI5 r4eFXIQ42ic3TCSP8YgEF0IZL14lsSTZViGgffTXSG09TgU6+QTpWniQsjI4Rett Zbmb8WMi6lFLxrPyYX31dT6tgVzjg8vYbJsU0dIVAF+nmVInIbJEiQyiW1WskbFH PWa+Fh7f9fKI8xaidPDVMeNJrxkLj+WFb8nVX/0zTcJWO3ebJxhiHegcrnXWbBvp ZfxZscepqrWJhascB/ubgAOA0XeQe6P6K9u2tWDWRsC30XIK9ZAAsw3md1A= -----END CERTIFICATE-----Generated at Sat Apr 26 13:30:33 2025 by rpki-client